Why IT Security?
Information becomes more and more important in the Information Technology (IT). Globalisation leads to a growing exchange of information within and between organisation (their employees, customers and suppliers) and an increasing use of networks. Moreover, activities of many companies nowadays rely on IT. Much of the value of a business is concentrated in the value of its information. Information is the basis of competitive advantage. And in the not-for-profit sector, with increased public awareness of identity theft and the power of information, it is also the area of an organisation’s operations that most needs control. Without information, neither businesses nor the not-for-profit sector could function. Valuing and protecting information are crucial tasks for the modern organisation.
About ISO 27001
ISO 27001 is a standard governing information security that was approved and published as an international standard in October, 2005, by the International Organization for Standardization and by the International Electrotechnical Commission (EC). The standard is developed to provide a model for establishing, implementing, operating, monitoring, and maintaining an information security management system, it is widely recognized as the highest security standard in the industry for examining the efficacy of an organization’s overall security posture. ISO 27001 is based on the ‘plan – do – check – act’ model. It uses risk assessment and business impact analysis to identify and manage risk to ensure the confidentiality, integrity and availability of information.
ISO 27001 is a true certification that provides confidence to management, business partners and customers that the organisation is serious about information security management. Increasingly your clients and prospective clients will want to know how safe your IT systems are. More organisations now see certification to ISO 27001 as a prerequisite for doing business. Becoming ISO 27001 certified will assure stakeholders that you take your obligations seriously.
What value does ISO 27001 certification deliver?